Threat Database Malware TraderTraitor Malware

TraderTraitor Malware

A Cybersecurity Advisory (CSA) was issued by the Federal Bureau of Investigation (FBI), the U.S. Treasury Department (Treasury), and the Cybersecurity and Infrastructure Security Agency (CISA) about a threat named the TraderTraitor Malware that is targeting numerous companies in the cryptocurrency industry and the blockchain technology. The TraderTraitor Malware is being used since 2020 by the Advanced Persistent Threat (APT) group Lazarus, also known as BlueNoroff, Stardust Chollima and APT38 to mine cryptocurrency illicitly.

To induce its victims to download corrupted programs related to cryptocurrency, the threat is using social engineering techniques on various media platforms and can affect the macOS and Windows operating systems. The operation starts with messages sent to people that work on IT operations, software creation, and system administration at cryptocurrency organizations, offering well-remunerated jobs. If the message's recipients go further, they will allow the entrance of the TraderTraitor Malware on their computers.

It is clear that the TraderTraitor Malware is a threat that should be avoided at all costs. The first and crucial step to staying clear of such a danger is to keep computer users informed. The other steps are mandatory too and should be taken all the time – to have a reliable and up-to-date security program that can detect and remove threats, maintain all software patched, use strong passwords and multi-factor authentication, and avoid the download of software from unchecked sources.


Most Viewed